Vulnerabilities > Apple > Watchos > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-02-20 | CVE-2016-7714 | Information Exposure vulnerability in Apple Iphone OS, mac OS X and Watchos An issue was discovered in certain Apple products. | 2.1 |
| 2017-02-20 | CVE-2017-2352 | Security Bypass vulnerability in Apple Iphone OS and Watchos An issue was discovered in certain Apple products. | 2.1 |
| 2016-05-20 | CVE-2016-1807 | Race Condition vulnerability in Apple products Race condition in the Disk Images subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows local users to obtain sensitive information from kernel memory via unspecified vectors. | 1.9 |
| 2016-03-24 | CVE-2016-1788 | Cryptographic Issues vulnerability in Apple Iphone OS, mac OS X and Watchos Messages in Apple iOS before 9.3, OS X before 10.11.4, and watchOS before 2.2 does not properly implement a cryptographic protection mechanism, which allows remote attackers to read message attachments via vectors related to duplicate messages. | 2.6 |
| 2015-12-11 | CVE-2015-7046 | Information Exposure vulnerability in Apple products The Sandbox feature in xnu in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 does not properly implement privilege separation, which allows attackers to bypass the ASLR protection mechanism via a crafted app with root privileges. | 2.6 |
| 2015-11-18 | CVE-2015-8035 | Resource Management Errors vulnerability in multiple products The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data. | 2.6 |
| 2015-09-18 | CVE-2015-5863 | Information Exposure vulnerability in Apple Iphone OS, mac OS X and Watchos IOStorageFamily in Apple iOS before 9 does not properly initialize an unspecified data structure, which allows local users to obtain sensitive information from kernel memory via unknown vectors. | 2.1 |
| 2015-09-18 | CVE-2015-5869 | Improper Input Validation vulnerability in Apple Iphone OS, mac OS X and Watchos The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Apple iOS before 9 allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message. | 3.3 |
| 2015-09-18 | CVE-2015-5898 | Information Exposure vulnerability in Apple Iphone OS and Watchos CFNetwork in Apple iOS before 9 relies on the hardware UID for its cache encryption key, which makes it easier for physically proximate attackers to obtain sensitive information by obtaining this UID. | 2.1 |
| 2015-09-18 | CVE-2015-5842 | Information Exposure vulnerability in Apple Iphone OS, mac OS X and Watchos XNU in the kernel in Apple iOS before 9 does not properly initialize an unspecified data structure, which allows local users to obtain sensitive memory-layout information via unknown vectors. | 2.1 |